Our favourite Eastern European cybercrime gang, usually hide in the Intercage/Esthost vaults or posing as Turkish fake ISPs, has figured out a way to abuse an iframe implementation found on Cnet related sites to replace the original target with malware forwarders. And thus, someone visiting these sites will be cordially greeted with fake video codecs, rogue javascript prompts and all the crud usually associated with Russian/Ukrainian malware bidniz